1. Home
  2. Configuration
  3. Desktop Configuration
  4. Disable 3rd Party Password Managers via Group Policy
  1. Home
  2. Configuration
  3. Server Configuration
  4. Disable 3rd Party Password Managers via Group Policy
Searching...

Disable 3rd Party Password Managers via Group Policy

DISCLAIMER: This method is best completed by an IT Team Member or Managed Service Provider.

To block 3rd party password managers across your business from your Active Directory Server using Group Policy, complete the below steps for each browser.

Microsoft Edge

PREREQUISITES: Microsoft Edge ADMX files installed in your Central Store. To learn how to complete this, click here.

  1. Open Group Policy and target your top level User OU. Right Click, and create a new policy, and link it there.
  2. Name the policy something easy to identify, and press OK.
  3. Next, under the Settings tab, right click in the window and select “Edit…”
  4. Navigate to User Configuration > Policies > Administrative Templates > Microsoft Edge > Extensions, and locate Control which extensions cannot be installed, right click, and Edit
  5. Enable the policy, and click “Show…”
  6. In each box, enter the Extension ID of the password manager you want to block and click ok. Common password manager IDs below.

    Bitwarden: jbkfoedolllekgbhcbcoahefnbanhhlh
    1Password: dppgmdbiimibapkepcbdbmkaabgiofem
    Dashlane: gehmmocbbkpblljhkekmfhjpfbkclbph
    OneLogin: mpnjdddkcbccdhgahjdcjppglaecajdj
    Okta: ncoafaeidnkeafiehpkfoeklhajkpgij
    Keeper: lfochlioelphaglamdcakfjemolpichk
    Keeper: mpfckamfocjknfipmpjdkkebpnieooca
    LastPass: bbcinlkgjjkejfdpemiealijmmooekmp

    Keeper has published 2 extensions in the Edge Store, requiring both of the above IDs to be used when blocking the extension.

  7. Press Okay again on the previous window
  8. The policy state will now change to “Enabled”. Once done, you are finished.
    It’s important to note that this is a USER POLICY, thus must be linked to a USER OU.

Google Chrome

PREREQUISITES: Google Chrome installed on your target workstations, & Google Chrome ADMX files installed in your Central Store. To learn how to complete this, click here.

  1. Open Group Policy and target your top level User OU. Right Click, and create a new policy, and link it there.
  2. Name the policy something easy to identify, and press OK.
  3. Next, under the Settings tab, right click in the window and select “Edit…”
  4. Navigate to User Configuration > Policies > Administrative Templates > Google > Google Chrome > Extensions, and locate Configure Extension installation blacklist, right click and select edit.
  5. Enable the policy and click Show
  6. In each box, enter the Extension ID of the password manager you want to block and click ok. Common password manager IDs below.
    Bitwarden: nngceckbapebfimnlniiiahkandclblb
    1Password: aeblfdkhhhdcdjpifhhbdiojplfjncoa
    Dashlane: fdjamakpfbbddfjaooikfcpapjohcfmg
    OneLogin: ioalpmibngobedobkmbhgmadaphocjdn
    Okta: glnpjglilkicbckjpbgcfkogebgllemb
    Keeper: bfogiafebfohielmmehodmfbbebbbpei
    LastPass: hdokiejnpimakedhajhdlcegeplioahd
  7. Press Okay again on the previous window
  8. The policy state will now change to Enabled. Once done, you are finished.

It’s important to note that this is a USER POLICY, thus must be linked to a USER OU.

Updated on September 14, 2023
Tagged:

Related Articles

Need Support?
Can't find the answer you're looking for?
Contact Support